Move comments into selinux.h and fix Make comments imperative, remove redundant words, clarify API level. Bug: 26641735 Test: treehugger Change-Id: Icad6001321aa2274b70fdcc74f6fe176f0b2d0db

commit: f831f10abe37645356007080cbf28a2c09f9d5e1 [log] [tgz]
author: Paul Crowley <paulcrowley@google.com> Tue Nov 05 09:46:59 2019 -0800
committer: Paul Crowley <paulcrowley@google.com> Tue Nov 05 09:48:24 2019 -0800
tree: b405798bc865d256e2655c934213587043fbd209
parent: 46452100977f66956175793a9557b0263bb58e0b [diff] [blame]
diff --git a/init/selinux.h b/init/selinux.h
index 63ad470..1a41bfd 100644
--- a/init/selinux.h
+++ b/init/selinux.h

@@ -19,10 +19,19 @@
 namespace android {
 namespace init {
 
+// Initialize SELinux, then exec init to run in the init SELinux context.
 int SetupSelinux(char** argv);
+
+// Restore the proper security context to files and directories on ramdisk, and
+// those that were created before initial sepolicy load.
+// This must happen before /dev is populated by ueventd.
 void SelinuxRestoreContext();
 
+// Set up SELinux logging to be written to kmsg, to match init's logging.
 void SelinuxSetupKernelLogging();
+
+// Return the Android API level with which the vendor SEPolicy was compiled.
+// Used for version checks such as whether or not vendor_init should be used.
 int SelinuxGetVendorAndroidVersion();
 
 static constexpr char kEnvSelinuxStartedAt[] = "SELINUX_STARTED_AT";
commit	f831f10abe37645356007080cbf28a2c09f9d5e1	[log] [tgz]
author	Paul Crowley <paulcrowley@google.com>	Tue Nov 05 09:46:59 2019 -0800
committer	Paul Crowley <paulcrowley@google.com>	Tue Nov 05 09:48:24 2019 -0800
tree	b405798bc865d256e2655c934213587043fbd209
parent	46452100977f66956175793a9557b0263bb58e0b [diff] [blame]